Workshop: A builder's guide to API security by Philippe De Ryck

Date: Thursday, 26 March

The Place: Wantsome, The Friendly IT Academy, Centris Building, Colonel Langa 17, Iași

Philippe De Ryck

Philippe De Ryck helps developers protect companies through better web security. As the founder of Pragmatic Web Security, he travels the world to train developers on web security and security engineering.
His Ph.D. in web security from KU Leuven lies at the basis of his exceptional knowledge of the security landscape. Google recognizes Philippe as a Google Developer Expert for his work on security in Angular applications.


08:30 - 09:00 - Registration
09:00 - 13:00 - Workshop
13:00 - 14:00 - Lunch
14:00 - 18:00 - Workshop

About the workshop

Most modern applications consist of a frontend web or mobile application, backed by several API-based services. This paradigm shift from server-side page generation causes a significant impact on various security aspects. To build secure applications, developers need to be aware of these security changes, along with current best practices.
This one-day workshop offers a unique in-depth perspective on modern API security.

  • API authentication
  • Managing "sessions"
  • Securely handling JSON Web Tokens
  • Understanding and securing Cross-Origin Resource Sharing (CORS)
  • Custom-built offensive and defensive lab assignments


Experience with developing web-facing APIs.
A laptop with a modern browser (e.g., Chrome, Firefox) installed.

Target audience

Anyone who is concerned about building secure APIs.

Early bird

  • 9 December - 19 January


  • VAT NOT included
Sold out


  • 20 January - 8 March


  • VAT NOT included

Late bird

  • 8 March - 25 March


  • VAT NOT included
Not available